Sunday, June 22, 2014
Terrible State Of Financial Software Code Plagues Investors
Comment Now
Follow Comments
The terrible state of software code in elements of the financial industry, including at locations linked to major trading venues, is a plague to investors and remains a ticking time bomb ready to badly damage the wider economy.
That is the verdict of several high-profile financial experts, who have warned of the widespread problems. Their comments follow a several-hour dive in the Dow Jones and S&P 500 that resulted from an apparently serious code flaw at the Institute of Supply and Management earlier this week  – making that body release entirely incorrect US manufacturing figures.
While, as a whole, software coding in the financial trading arena is at the cutting edge of technology, costs in total billions of dollars a year and is perfected by some of the most talented software developers, some companies’ serious omissions are causing big problems and on occasion badly hitting the wider US economy.
Chris Skinner, chair at networking group the Financial Services Club, tells Forbes that several of these software errors are potentially serious for the economy, given the fact that in any one second of trading, enormous numbers of trades are processed. Wrong code can badly knock both automated and manual trade execution right off kilter.
The ISM situation, for which a detailed explanation has still not been given several days on, is “an example of both the interconnectivity of systems and the impact of real-time”, Skinner says. After the ISM released inaccurately low US manufacturing figures, the Dow Jones and S&P 500 dived by 34 points and 0.4 per cent respectively as traders rushed to sell stock – until the ISM corrected its figures later in the day, apologizing for the problem.
The ISM declined to reveal more details on what happened to its code, when asked, because of an ongoing internal investigation into the problems.
Money
Money (Photo credit: Tax Credits)
“When data is wrong, either through cyber attack or poor software,” Skinner says, “the markets respond in real-time by buying or selling based upon a belief in their data being right”. The failure of the ISM to solve its own problem was completely “dirisible”, Skinner says.
Risk Of Many More, And Worse, Problems
The confused state of software coding in some parts of the market is so bad that one expert says he is “surprised” there have not been many more of these problems. Ralph Silva, head of financial industry analysis firm SRN, says that the danger is partly caused by the serious disparity between the ways that coders and the heads of trading operations approach numbers.
In the days of Excel, when algorithms were much more straightforward (and achieved less) it was at least those who “actually understand the foundation of the math” who wrote and maintained the code. There is no desire to return to Excel because of low capabilities in a complex arena, so the connection between coders and business executives must improve to safeguard current code, Silva says.
“Today, algorithms are written to very elaborate coding systems that require specialised technical support. These people understand code, not business. They are more likely not to recognise a bad number,” he says.
There will likely be more of these problems in the future, as algorithms become more complex in order to meet the market’s appetite for advanced execution. “Ten years ago, the average algorithm would consider about four data sources,” Silva says. “Now we have algorithms considering 200, and that level of interdependency is going to cause problems.”
The awful economic climate of recent years has also seriously damaged the way in which software code is checked. Silva says that as companies continue to cut back costs, they usually – and mistakenly – remove testing and quality assurance staff because those people, “if they are doing their jobs, appear to be doing nothing – it’s like the CIA, you only hear about them when they screw up”.
How Can This Problem Be Solved?
Emmanuel Benzaquen, chief executive at code analysis firm Checkmarx, says that businesses need to constantly test code during development as well as when it is live, with sophisticated systems making the work more reliable. “Nowadays, testing is performed with automated tools that alert when a vulnerability is found,” he says.
The financial industry needs to pay particular attention to get its code right, given the “vast amounts of customer data and monetary funds” that it holds. For attackers to penetrate a system, they often look at the way to exploit “a vulnerability that exists in the company’s software”, he says, with coding errors being a prime target.
“Severe security flaws in the financial markets can allow access to enormous amounts of consumer data,” he warns, “and may also enable attackers to perform transfers and manipulate dollar values”. A breach could also lead the company that has been attacked to break regulatory rules, leading to a severe fine.
While the market tries to forget Monday’s events, and enjoys a substantial rise in the Dow Jones on Friday after positive US jobs data, the need for quality assurance and proper code testing is back in the spotlight. It is the accuracy and commitment to getting these processes right that can make or break not only the businesses involved, but the entire market’s stability.
More on Forbes:
Why Libor Urgently Needs Automation
ISM Software Code Knocks Down US Manufacturing, Dow Jones AND S&P 500
Volcker Compliance: The Ultimate Big Data Challenge
For more news for CIOs , with a special focus on social media, women in tech, security and breakthrough technology at the world’s largest organizations, follow me on Twitter. Please share your thoughts below.
Subscribe to:
Post Comments (Atom)
 
No comments:
Post a Comment